城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): China Telecom
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '223.220.0.0 - 223.221.255.255'
% Abuse contact for '223.220.0.0 - 223.221.255.255' is 'anti-spam@chinatelecom.cn'
inetnum: 223.220.0.0 - 223.221.255.255
netname: CHINANET-QH
descr: CHINANET Qinghai Province Network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: GF298-AP
tech-c: GF298-AP
abuse-c: AC1573-AP
status: ALLOCATED PORTABLE
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-QH
mnt-routes: MAINT-CHINANET-QH
mnt-irt: IRT-CHINANET-CN
last-modified: 2021-06-15T08:06:11Z
source: APNIC
irt: IRT-CHINANET-CN
address: No.31 ,jingrong street,beijing
address: 100032
e-mail: anti-spam@chinatelecom.cn
abuse-mailbox: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
auth: # Filtered
remarks: anti-spam@chinatelecom.cn was validated on 2026-05-21
mnt-by: MAINT-CHINANET
last-modified: 2026-05-21T01:31:36Z
source: APNIC
role: ABUSE CHINANETCN
country: ZZ
address: No.31 ,jingrong street,beijing
address: 100032
phone: +000000000
e-mail: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
nic-hdl: AC1573-AP
remarks: Generated from irt object IRT-CHINANET-CN
remarks: anti-spam@chinatelecom.cn was validated on 2026-05-21
abuse-mailbox: anti-spam@chinatelecom.cn
mnt-by: APNIC-ABUSE
last-modified: 2026-05-21T01:32:00Z
source: APNIC
person: Gui Fang
nic-hdl: GF298-AP
e-mail: changgf@public.xn.qh.cn
address: shengli street , xining
phone: +86-971-8130334
fax-no: +86-971-8230100
country: CN
mnt-by: MAINT-CHINANET-QH
last-modified: 2008-09-04T07:48:38Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU5)
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 223.221.228.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37725
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;223.221.228.93. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026070300 1800 900 604800 86400
;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jul 03 17:43:23 CST 2026
;; MSG SIZE rcvd: 107
Host 93.228.221.223.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 93.228.221.223.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 182.254.172.107 | attackspambots | detected by Fail2Ban |
2020-06-05 19:43:02 |
| 76.169.132.27 | attackspambots | "XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES: |
2020-06-05 19:48:37 |
| 160.16.61.235 | attackbots | Jun 3 02:49:29 ntop sshd[32758]: User r.r from 160.16.61.235 not allowed because not listed in AllowUsers Jun 3 02:49:29 ntop sshd[32758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.16.61.235 user=r.r Jun 3 02:49:31 ntop sshd[32758]: Failed password for invalid user r.r from 160.16.61.235 port 41840 ssh2 Jun 3 02:49:32 ntop sshd[32758]: Received disconnect from 160.16.61.235 port 41840:11: Bye Bye [preauth] Jun 3 02:49:32 ntop sshd[32758]: Disconnected from invalid user r.r 160.16.61.235 port 41840 [preauth] Jun 3 02:52:51 ntop sshd[1050]: User r.r from 160.16.61.235 not allowed because not listed in AllowUsers Jun 3 02:52:51 ntop sshd[1050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.16.61.235 user=r.r Jun 3 02:52:53 ntop sshd[1050]: Failed password for invalid user r.r from 160.16.61.235 port 51140 ssh2 Jun 3 02:52:55 ntop sshd[1050]: Received disconnect from 1........ ------------------------------- |
2020-06-05 19:39:17 |
| 51.178.78.153 | attackspam | Unauthorized connection attempt detected from IP address 51.178.78.153 to port 4444 [T] |
2020-06-05 19:25:40 |
| 191.242.40.64 | attackbotsspam | (BR/Brazil/-) SMTP Bruteforcing attempts |
2020-06-05 19:48:09 |
| 185.173.35.9 | attack |
|
2020-06-05 19:20:08 |
| 186.225.102.58 | attack | $f2bV_matches |
2020-06-05 19:35:59 |
| 164.132.51.91 | attackbotsspam | (mod_security) mod_security (id:210492) triggered by 164.132.51.91 (FR/France/91.ip-164-132-51.eu): 5 in the last 3600 secs |
2020-06-05 19:23:40 |
| 191.6.173.142 | attackspam | (BR/Brazil/-) SMTP Bruteforcing attempts |
2020-06-05 19:43:30 |
| 167.99.104.93 | attackspambots | Unauthorized connection attempt detected from IP address 167.99.104.93 to port 8080 [T] |
2020-06-05 19:22:36 |
| 211.210.219.71 | attackspam | Unauthorized connection attempt detected from IP address 211.210.219.71 to port 22 |
2020-06-05 19:41:56 |
| 37.139.4.138 | attackbotsspam | SSH brutforce |
2020-06-05 19:31:39 |
| 213.217.0.101 | attackbotsspam | 06/05/2020-06:50:30.561330 213.217.0.101 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-06-05 19:33:44 |
| 123.207.178.45 | attackbots | SSH/22 MH Probe, BF, Hack - |
2020-06-05 19:30:07 |
| 119.57.170.155 | attack | Jun 5 04:29:57 Host-KLAX-C sshd[29068]: Disconnected from invalid user root 119.57.170.155 port 51763 [preauth] ... |
2020-06-05 19:22:08 |